now that's scary enough and I am happy that mod_security blocks that type of request. or should it?

what is the proper way?
- ISPC3 code to be modified not to trigger any modsecurity alerts (currently I do not know if the ajax functions in ISPC are a potential vulnerability?)
or
- modify mod_security rules to allow these requests from ISPC panel.

now that's scary enough and I am happy that mod_security blocks that type of request. or should it?

Click to expand...

No, it should not as it is not a injection attack.

Thats a false positive in mod security rules. A controlpanel mus be able to send a post request that contains the name of a system path like /etc/, otherwise you would not be able to administer the server. And this has nothing to do with the ajax functions in ispconfig.